IT Security Expert
This job is no longer active!View all jobs Edenred Digital Center activeView all jobs IT Security Expert active on Hipo.roView all jobs IT Software active on Hipo.ro |
Employer: | Edenred Digital Center |
Domain: |
|
Job type: | full-time |
Job level: | peste 5 years of experience |
Location: |
|
Updated at: | 27.07.2022 |
Remote work: | On-site |
Edenred is a pioneer, a tech leader and the everyday companion for people at work across the world.
Our 12,000 employees are committed to making the world of work a better place for all, one that is safer, more efficient and more user-friendly. At Edenred, our passion for customers, respect, imagination, simplicity and entrepreneurial spirit are our values. For anyone who needs to vibe in their professional life, we are the best place for you to work and grow.
The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic #tech projects.
The successful candidate will be an information security professional passionate by functional and technical subjects and with a proven and successful experience in implementing information security policies and procedures, in conjunction with IT and business leaders.
He/she will be result and performance oriented with a can-do attitude and be able to persuade/influence others in the organization. The ability to engage various stakeholders with passion and conviction to persuade others that security is paramount and not just an option.
An experience is expected in at least four of the following domains: IT security governance, Operations security, Application security, IT security projects, Access management, IT compliance, IT resilience.
An extensive knowledge of Security and Risk Frameworks as well as software development best practices will be appreciated.
3 to 5 years’ experience in a similar function
Education: Master’s degree in Information Technologies or similar, a specialisation in IT Security will be a plus
Proficiency in the use or knowledge of:
IT risk analysis methodologies, threat modelling or analysis
IT security design, architecture, standards and best practices
Web applications security and secure coding
Definition, implementation, and follow-up of security measures & remediation plan
The ideal candidate is demonstrating:
Strong communication skills: he/she adapts own approach to the audience, anticipating issues, preparing for possible resistance to proposed solutions and responding in an appropriate style to reach a mutual agreement.
Robust technical skills: he/she can address technical topics with the IT specialists (architecture, infrastructure, developer, …) as deeper as needed to achieve the objectives and solve difficulties.
Agility and team spirit: he/she accepts input from a wide range of perspectives (business, legal, HR, IT, etc.) in a local and international context. Works closely with various stakeholders and is available for them to reach common objectives.
Proactive: he/she takes initiative and proactively engages with the local team
Professional IT Security certification is a plus: ISO 27005 Risk Manager, ISO 27001 Information Security Management System Implementor, CEH Certified Ethical Hacker, etc.
Languages required: Fluent in English, both spoken & written
The IT Security Expert will be responsible for IT Security and IT Resilience in the Belgium BU. He will be a centerpiece in the country to improve the IT Security and Resilience according to our roadmap and strategy: identify, protect & comply, detect, respond, recover and train.
This position is an opportunity for he/she to exercise a wide range of activities with the responsibility of the IT Security in the BU scope and to work with many experimented and involved business and IT stakeholders.
Under the supervision of the Regional IT Security Leader, he/she will be in charge of IT Security:
In projects:
identify with business the IT security and continuity needs
realize IT risk analysis
perform third-party assessments and validate IT Security clauses in contracts
identify security measures and follow their implementation or deployment
perform or organize security tests (e.g. pentest) and reach compliant results
Compliance:
support the strategy and roadmap implementation in the BU
control quality of IT Security & Resilience actions and deliverables
collect and ensure continuous follow-up and improvement of Security KPIs
reach and maintain the compliance with the defined targets for the Security KPIs
comply with standards and regulations needed for the business (GDPR, ISO…)
Support:
define, implement and maintain the IT Security procedures in the BU
handle IT security alerts, tickets and incidents with the Security Operation Center
follow and manage vulnerabilities remediation
answer to questions about cybersecurity (including customer assessment)
advise, follow and help on internal or third-party audit recommendations
Awareness:
animate the local cybersecurity awareness (on-boarding awareness, etc.)
promote cybersecurity in the BU, be the security point of contact
IAM: deploy IAM process and tools from infrastructure level to application/user level
Resilience:
support the BU teams in BIA definition and IT DRP implementation & exercises
Reporting - the IT Security Expert reports to:
the Regional IT Security Leader (N+1) who reports to the Zone IT Security Leader
and the BU IT leader (dotted line) who reports to the Regional IT Leader
KEY STAKEHOLDERS
The IT Security Expert will interact with internal stakeholders:
In the BU
IT Leader
IT Application Owners & Business Analysts
IT Architecture & Infrastructure
Data Protection Correspondent (DPC)
Human Resources, Legal and Business teams
In the Group
Regional IT Security Analysts or Experts (members of the same team in other BU)
Regional IT Security Leader (N+1)
Cybersecurity Center of Expertise (COE) teams
Security Operation Center (SOC)
IT teams (architecture, network, infrastructure)
And with external stakeholders:
The BU partners (Merchants), Customers or Users
IT and cybersecurity suppliers (audit, penetration testing, IT hosting, etc.)
Job-uri similare care te-ar putea interesa: |
|
---|---|
SOC Cyber Security Expert (Hybrid) BUCURESTI, | |
Operations Engineer with Security Skills Aplica fara CV | |
Security Operations Engineer (CyberARK) Aplica fara CV | |
Vezi job-uri similare (318) |
Raporteaza eroarea la